Veeam Backup & Replication 9.0 [Archived]
Veeam Cloud Connect Guide
Related documents
Search
This is an archive version of the document. To get the most up-to-date information, see the current version.

Rights and Permissions to Access SSL Certificates

In this article

    The Windows account under which the Veeam Cloud Connect Service on the SP Veeam backup server runs must have the following permissions:

    1. The Windows account must have access to the private key in the non-interactive mode (without having to enter a password). SSL certificates with strong encryption are not supported.
    2. The Windows account must have access to the SSL certificate store folder where the private key is kept and must have read rights for this folder. To learn more about key directories and files, see https://msdn.microsoft.com/en-us/library/windows/desktop/bb204778%28v=vs.85%29.aspx.  

    A self-signed SSL certificate generated with Veeam Backup & Replication is placed to the Shared certificate store. The following Windows accounts have access to this certificate:

    • User who created the SSL certificate
    • LocalSystem Windows account
    • Local Administrators group
    1. The Windows account must have access to the SSL certificate itself (stored in the registry) and permissions on corresponding registry folders.

    A self-signed SSL certificate generated with Veeam Backup & Replication is placed to Local Machine\Trusted Root and Local Machine\My registry folders. These folders do not contain any private information and all users have access to these folders by default.

    View all results across Veeam
    Back to document search